IT - ADMIN - Data/Information Architect - Consultant - ITADA26-04542

Job Title: IT \- ADMIN \- Data/Information Architect \- Consultant

Location: All over the USA, Remote \- Columbia, South Carolina

Duration: 12 months

Payrate: $85\.00 per hr. on a W2

Employment Type: Only W2 (No C2C)

Summary:

The position will work as a Consulting Vulnerability Management Systems Analyst within the Division of Information Security and will assist in maturing the statewide vulnerability management program. This role is responsible for administration of vulnerability management platforms, agency coordination, risk documentation, and training. The consultant will help ensure state agencies manage and reduce information security risks through effective patching and remediation. The engagement is expected to be needed for 12 months with the possibility of extension

Daily Duties / Responsibilities:

PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL\-TIME REMOTE (ON\-SITE AS NEEDED).

• Assist with the statewide vulnerability management program for Client.
• Administer vulnerability management platforms, configure policies, reporting, and services to support agencies.
• Analyze vulnerabilities, prioritize remediation, and document residual risks for agency systems.
• Provide training and guidance to agencies on vulnerability management practices.
• Support procurement, configuration, and utilization of vulnerability management tools.
• Develop POA\&Ms with Client staff and agencies to track remediation efforts against SLOs.
• Perform system criticality validation reviews with agencies to align severity levels and risk exposure.
• Provide regular reporting and communication to stakeholders regarding vulnerabilities and risks.

Required Skills (rank in order of Importance):

• 5\+ Years of Experience with vulnerability management tools (Qualys, Tenable, Rapid7\).
• 5\+ Years of Experience with architecting, deploying, configuring, and operating vulnerability management platforms.
• 5\+ Years of Experience with Windows and Linux operating systems.
• 5\+ Years of Experience with interpreting and applying CVSS ratings, POA\&M tracking, and risk mitigation strategies

Preferred Skills (rank in order of Importance):

• Familiarity with standards such as PCI DSS, NIST, ITIL, CVSS, and MITRE Telecommunication\&CK.
• Experience in application security and automation/scripting (Python PowerShell, Bash).
• Prior experience leading statewide or enterprise\-wide vulnerability programs.
• Candidate is local to Columbia, SC or surrounding city in South Carolina

Required education/certifications:

• Bachelor's degree in information technology or information security related field
• Eight years of relevant work experience may be substituted in lieu of education OR Five years of experience in supporting enterprise IT environments and/or system deployments

Preferred Education/Certifications:

• CISSP, CISA, CISO or equivalent advanced security certification.
• Additional relevant certifications (e.g., CEH, OSCP, GPEN).